Secure-vsomeip配置方法:
在crypto下会生成generated,里面有cerficates和keys,分别对应证书和私钥。
{
"unicast" : "192.168.1.107",
"logging" :
{
"level" : "debug",
"console" : "true",
"dlt" : "false"
},
"applications" :
[
{
"name" : "World",
"id" : "0x1313"
}
],
"services" :
[
{
"service" : "0x1234",
"instance" : "0x5678",
"unreliable" : "30509",
"reliable" :
{
"port" : "30510",
"enable-magic-cookies" : "false"
}
}
],
"routing" : "World",
"service-discovery" :
{
"enable" : "false",
"multicast" : "224.0.0.1",
"port" : "30490",
"protocol" : "udp"
},
"service-security" :
{
"certificates-path" : " ./",
"root-certificate-fingerprint" : "05C3AA6E3852E3128EBBB7EE254604A002CE04D9E91D758C35AEDE0026077E27",
"private-key-path" : "./",
//confident_key的证书生成的fingerprint
"certificate-fingerprint" : "095DAAD472364460DF8ACDF57E8C086E7A116EBC88CC8D0A237C856AD4922FA5",
"default-algorithms" :
[
{
"security-level" : "authentication",
"security-algorithm" : "chacha20-poly1305-256"
},
{
"security-level" : "confidentiality",
"security-algorithm" : "aes-gcm-128"
}
]
},
"configuration-security" :
{
"signature-algorithm" : "rsa2048-sha256",
//这是configuration_file的fingerprint,fingerprint是根据证书生成的
"certificate-fingerprint" : "095DAAD472364460DF8ACDF57E8C086E7A116EBC88CC8D0A237C856AD4922FA5",
"signature" : "00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"
}
}
使用openssl dgst -sha256 -hex -sign configuration_signature.key service.json生成signature,将上面的0替换掉
![C语言第四章自述2第四章 选择结构程序设计[图]](data:image/gif;base64,R0lGODlhAQABAIAAAP///wAAACwAAAAAAQABAAACAkQBADs=)